theforeman · aneta-petrova · Sep 16, 2025 · Sep 15, 2025 · Sep 15, 2025 · Sep 16, 2025
diff --git a/guides/common/modules/proc_configuring-tls-for-secure-ldap.adoc b/guides/common/modules/proc_configuring-tls-for-secure-ldap.adoc
@@ -5,7 +5,8 @@
 
 If {Project} uses TLS to establish a secure LDAP connection (LDAPS), you must obtain the CA certificates of your LDAP server and add them to the trusted CA list on the base operating system of your {ProjectServer}.
 
-If your LDAP server uses a certificate chain with intermediate certificate authorities, you must obtain all root and intermediate certificates and add them to the trusted CA list.
+.Prerequisite
+* If your LDAP server uses a certificate chain with intermediate certificate authorities, the trusted CA list must contain all root and intermediate certificates.
 
 .Procedure
 . Obtain the CA certificate from the LDAP Server:
@@ -31,7 +32,7 @@ ifdef::foreman-deb[]
 # cp /tmp/_example.crt_ /usr/local/share/ca-certificates
 endif::[]
 ifndef::foreman-deb[]
-# cp /tmp/_example.crt_ /etc/pki/tls/source/anchors
+# cp /tmp/_example.crt_ /etc/pki/ca-trust/source/anchors
 endif::[]
 ----
 .. Update the certificate authority truststore:
@@ -46,6 +47,12 @@ ifndef::foreman-deb[]
 endif::[]
 ----
 . Delete the downloaded LDAP certificate from the temporary location on your {ProjectServer}.
+. Restart {Project} services:
++
+[options="nowrap", subs="+quotes,verbatim,attributes"]
+----
+# {foreman-maintain} service restart
+----
 
 ifndef::orcharhino,foreman-deb[]
 .Additional resources